Nvidia Triton Inference Server vulnerabilities

5 known vulnerabilities affecting nvidia/nvidia_triton_inference_server.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH4MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2024-0095HIGHCVSS 7.2v20.10 to 24.042024-06-13
CVE-2024-0095 [CRITICAL] CWE-117 CVE-2024-0095: NVIDIA Triton Inference Server for Linux and Windows contains a vulnerability where a user can injec NVIDIA Triton Inference Server for Linux and Windows contains a vulnerability where a user can inject forged logs and executable commands by injecting arbitrary data as a new log entry. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
cvelistv5nvd
CVE-2024-0103MEDIUMCVSS 6.5v23.10 to 24.042024-06-13
CVE-2024-0103 [MEDIUM] CWE-1419 CVE-2024-0103: NVIDIA Triton Inference Server for Linux contains a vulnerability where a user may cause an incorrec NVIDIA Triton Inference Server for Linux contains a vulnerability where a user may cause an incorrect Initialization of resource by network issue. A successful exploit of this vulnerability may lead to information disclosure.
cvelistv5nvd
CVE-2024-0088HIGHCVSS 8.1v20.10 to 24.032024-05-14
CVE-2024-0088 [MEDIUM] CWE-119 CVE-2024-0088: NVIDIA Triton Inference Server for Linux contains a vulnerability in shared memory APIs, where a use NVIDIA Triton Inference Server for Linux contains a vulnerability in shared memory APIs, where a user can cause an improper memory access issue by a network API. A successful exploit of this vulnerability might lead to denial of service and data tampering.
cvelistv5nvd
CVE-2024-0100HIGHCVSS 8.1v22.09 to 24.032024-05-14
CVE-2024-0100 [MEDIUM] CWE-73 CVE-2024-0100: NVIDIA Triton Inference Server for Linux contains a vulnerability in the tracing API, where a user c NVIDIA Triton Inference Server for Linux contains a vulnerability in the tracing API, where a user can corrupt system files. A successful exploit of this vulnerability might lead to denial of service and data tampering.
cvelistv5nvd
CVE-2024-0087HIGHCVSS 8.8v22.09 to 24.032024-05-14
CVE-2024-0087 [CRITICAL] CWE-73 CVE-2024-0087: NVIDIA Triton Inference Server for Linux contains a vulnerability where a user can set the logging l NVIDIA Triton Inference Server for Linux contains a vulnerability where a user can set the logging location to an arbitrary file. If this file exists, logs are appended to the file. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
cvelistv5nvd